In the News

Sharing threat information among peers benefits all parties through awareness, informed decision making, and increased resilience. The NCFTA sharing model also includes responsible sharing with and support of law enforcement to enable authorities to disrupt cyber-criminal actors and groups wherever they may be. This is a big reason why we do what we do; to impose a consequence on those who leverage the internet to criminally benefit themselves or others.

Included below are press releases pertaining to successful law enforcement investigations and other newsworthy items in which the NCFTA or NCFTA community played a supporting role.

Congratulations to those law enforcement agencies, case agents, and prosecutors who have invested countless hours while seeking justice for exploited victims.

Featured Stories

May 23, 2025

Mr. Honesty can't live up to his name. Sentenced to four years in prison for his role in multiple cybercrimes and fraud schemes.

Marco Honesty was sentenced to four years in prison on May 23, 2025, for multiple cybercrimes and fraud schemes including: Paycheck Protection Program (PPP) fraud resulting in more than $500,000 loss to the SBA, smishing and bank account takeovers, fraudulent money orders, and identify theft.

January 29, 2025

California Conspirators Funneled $59m in Unemployment Compensation Benefits to China

Defendants and others entered into a series of agreements to make it appear as if they were operating legitimate businesses selling masks and other COVID19 personal protective equipment. In reality, the funds that the defendants obtained and laundered through their companies were derived from fraudulently obtained state unemployment compensation (“UC”) benefits. According to the indictment, unnamed members of the conspiracy, including some believed to be located in China, established thousands of accounts at banks across the United States using the personal identifying information (“PII”) of identity theft victims. From there, fraudulent UC claims were generated and paid to these accounts.

October 15, 2024

New York State's First-Ever Missing Child Rescue Operation Results in Successful Location of 47 Children Reported Missing in Erie County

The New York State Division of Criminal Justice Services (DCJS) today announced that 47 children who were reported missing in Erie County have been located through a first-of-its-kind Missing Child Rescue Operation in the state.

August 19, 2024

Nigerian Man Arrested in Alleged $10 Million Pandemic Unemployment Assistance Fraud Scheme

BOSTON – A Nigerian man was arrested on Aug. 13, 2024 upon arriving at John F. Kennedy International Airport in New York City on charges that he, and others, conspired to fraudulently obtain at least $10 million in COVID-19 unemployment benefits.

August 20, 2024

SENTENCED! : Kentucky Man Who Faked His Own Death Sentenced to 81 Months for Cyber Intrusion and Aggravated Identity Theft

UPDATE: On August 19, 2024, Jesse Kipf, 39, was sentenced to 81 months for computer fraud and aggravated identity theft. Kipf plead guilty to hacking into state death registry systems and private business, and selling access to networks on the dark web. Previously, in November 2023, Kipf, was indicted by a federal grand jury sitting in London, Kentucky on five counts of computer fraud, three counts of aggravated identity theft, and two counts of making false statements on applications in connection with federally insured financial institutions.

August 12, 2024

Belarusian-Ukrainian Cybercriminal known as "J.P. Morgan" faces decades in prison after being extradited from Poland.

Following an extensive international law enforcement investigation, Maksim Silnikau, aka "J.P. Morgan" was extradited to the U.S. from Poland. Silnikau is believed to be one of the world's most prolific Russian-speaking cybercrime actors and the founder of ransomware-as-a-service group Reveton. The U.K. National Crime Agency (NCA), FBI, Secret Service, Guardia Civil of Spain, Security Service of Ukraine Cyber Department and many other law enforcement agencies coordinated on the investigation.

July 26, 2024

Operation Chakra-II: India's CBI takes Action to dismantle major cyber crime network, arrests 43

India's Central Bureau of Investigation arrests 43 and disrupts major international criminal call center responsible for targeting victims globally.

July 19, 2024

UK Arrests Suspected Scattered Spider Hacker Linked to MGM Attack

UK police have arrested a 17-year-old boy suspected of being involved in the 2023 MGM Resorts ransomware attack and a member of the Scattered Spider hacking collective...the arrest is part of a broader investigation conducted by the National Crime Agency and the FBI into a hacking group known to breach networks, steal data, and deploy ransomware in extortion schemes.

May 29, 2024

911 S5 Botnet Dismantled and Its Administrator Arrested in Coordinated International Operation

YunHe Wang, a People's Republic of China national, was arrested on May 24 on charges that he created and operated the world's largest botnet and deployed malware across millions of residential Windows computers worldwide. Wang generated millions of dollars by offering cybercriminals access to these infected computers for a fee.

October 13, 2023

Man Arrested in Multi-State Sex Trafficking Ring; 3 Victims Found at Monroeville, PA Motel

MONROEVILLE, Pa. — A man has been arrested in connection to a multi-state sex trafficking ring, and investigators said three victims were found at a motel in Monroeville.

December 18, 2023

Police Raid “Skimmer Manufacturing Lab” in Houston Airbnb, Charge Romanian Suspects Who Crossed Canadian Border

Four suspects, believed to be connected to Romanian crime families, have been charged in connection to a card skimming scheme. The group allegedly crossed the border from Canada into Vermont and cut off their court-ordered GPS ankle monitors before placing credit card skimmers at several locations while temporarily staying in Houston, according to court documents.

November 14, 2023

RUSSIAN NATIONAL PLEADS GUILTY TO OPERATING ILLEGAL PROXY SERVICE THAT INFECTED TENS OF THOUSANDS OF INTERNET-CONNECTED DEVICES

Sergei Makinin, a Russian and Moldovan national, pled guilty to three counts of knowingly causing the transmission of a program that intentionally caused damage without authorization to protected computers.

August 29, 2023

Qakbot Malware Disrupted in International Cyber Takedown

Qakbot malware infected more than 700,000 victim computers, facilitated ransomware deployments, and caused hundreds of millions of dollars in damage. The action represents the largest U.S.-led financial and technical disruption of a botnet infrastructure leveraged by cybercriminals to commit ransomware, financial fraud, and other cyber-enabled criminal activity.

July 24, 2023

SoCal Skimmer Gets Prison for Million-Dollar Financial Identity Theft Scheme

A Los Angeles resident was sentenced to 41 months in prison for repeatedly installing at least 54 skimming devices at gas pumps throughout Southern California. Haykaz Mansuryan is the third co-conspirator in this scheme to be sentenced. Two additional defendants are presently set for a jury trial. One defendant, Petros Armutyan, remains a fugitive. The remaining 3 defendants are pending sentencing.

April 11, 2022

Justice Department Investigation Leads to Shutdown of Largest Online Darknet Marketplace

Russian Resident Indicted on Conspiracy Charges Related to Operating Hydra Market

July 19, 2022

Readout of Deputy Attorney General Lisa O. Monaco’s Trip to New York

Deputy Attorney General (Deputy AG) Lisa Monaco traveled to New York this week to highlight the Department of Justice’s efforts to combat the cyber threats of today and prepare for the threats of tomorrow. On Monday afternoon, Deputy AG Monaco visited the National Cyber-Forensics Training Alliance (NCFTA), a public-private partnership designed to increase information-sharing between private industry and government to identify, mitigate and disrupt cyber threats. She received a briefing from the NCFTA’s managing director, several private sector members and the Federal Bureau of Investigation (FBI) on the strategies they are using to tackle malicious cyber actors.

May 10, 2022

London Singer Charged with Computer Intrusion, Money Laundering, Securities Fraud, Wire Fraud and Other Crimes

As alleged in the complaint, the defendant was part of a nefarious group that caused millions of dollars in losses to victims by engaging in a litany of cybercrimes, including widespread hacking, fraud, taking control of victims’ securities brokerage accounts, and trading in the name of the victims

May 10, 2022

London singer charged with stealing $5 million from U.S. traders by breaking into their brokerage accounts, buying stocks to manipulate prices — and trading on the swings

Cybercriminal Charged with Unauthorized Computer Intrusion, Securities Fraud, Wire Fraud and Other Crimes

April 11, 2022

Justice Department Investigation Leads to Shutdown of Largest Online Darknet Marketplace

Russian Resident Indicted on Conspiracy Charges Related to Operating Hydra Market

April 11, 2022

Member of hacking group sentenced for scheme that compromised tens of millions of debit and credit cards

Damage to banks, merchants, card companies and consumers estimated at more than $1 billion

April 6, 2022

Court-Authorized Disruption of Botnet Controlled by the Russian Federation’s Main Intelligence Directorate (GRU)

The operation copied and removed malware known as “Cyclops Blink” from the botnet’s command-and-control devices, disrupting the GRU’s control over thousands of infected devices worldwide. Victims must take additional steps to remediate the vulnerability and prevent malicious actors from further exploiting unpatched devices.

March 30, 2022

Global Operation Disrupts Business Email Compromise Schemes

Following on the success of Operation Wire Wire and Operation reWired, the FBI conducted another significant, coordinated effort to disrupt Business Email Compromise (BEC) schemes that intercept and steal wire transfers sent by businesses and individuals. The U.S. Department of Justice and international law enforcement partners carried out Operation Eagle Sweep over a three-month period and arrested 65 suspects in the United States and overseas, including 12 in Nigeria, eight in South Africa, two in Canada, and one in Cambodia. In parallel with Operation Eagle Sweep, Australia, Japan, and Nigeria conducted local operations targeting BEC actors.

March 9, 2022

Texas Man Sentenced to Prison for Defrauding National On-line Retailers

Adam George Redmon, age 38, of Austin, Texas, was sentenced to a year and a day in federal prison for mail fraud that victimized at least eleven national retailers and financial institutions.